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Amendments to the Claims : 

This listing of claims replaces all prior versions and listings of claims in the application: 
Listing of Claims : 

1 . (Previously Presented) A computer-implemented method comprising: 
receiving a request from a client to take an action with respect to a first electronic 

document, the action unrelated to a second electronic document; and 

synchronizing offline access information with the client, in response to the request, to 
pre-authorize the client, to allow actions by a user as a member of a group of users, by sending to 
the client an update to offline access information retained at the client, the update comprising a 
first key associated with the group, the first key being useable at the client to access the second 
electronic document while offline by decrypting a second key in the second electronic document. 

2. (Previously Presented) The method of claim 1, wherein synchronizing offline 
access information with the client comprises comparing a time of last recorded client- 
synchronization with a time of last change in user-group information for the user. 

3. (Previously Presented) The method of claim 1 , wherein synchronizing offline 
access information with the client comprises: 

receiving user-group information for the user from the client; and 
comparing current user-group information for the user with the received user-group 
information for the user from the client. 

4. (Previously Presented) The method of claim 1, wherein the client allows actions 
with respect to the second electronic document based on document-permissions information 
residing in the second electronic document. 
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5. (Previously Presented) The method of claim 1, wherein the offline access 
information update further comprises document-permissions information associated with 
multiple documents, including the second electronic document, and the client allows actions with 
respect to the second electronic document based on the document-permissions information. 

6. (Previously Presented) The method of claim 1, wherein synchronizing offline 
access information with the client comprises synchronizing silently in a background process 
without the user being aware of the update. 

7. (Previously Presented) The method of claim 1 , wherein the request requires 
authentication, the method further comprising verifying the user at the client as an authenticated 
user. 

8. (Previously Presented) The method of claim 1, wherein the offline access 
information update further comprises: 

at least one user-specific key; 

at least one group-specific key, including the first key; and 

at least one set of document-permissions information associated with multiple 



9. (Original) The method of claim 8, further comprising receiving an offline audit 
log from the client. 

10. (Previously Presented) The method of claim 8, wherein the at least one set of 
document-permissions information comprises one or more policies associated with the first 
document, and the offline access information update further comprises a document revocation 
list. 



documents. 
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1 1 . (Previously Presented) The method of claim 8, wherein the offline access 
information update further comprises at least one set of document-permissions information, 
associated with a specific document, selected based on synchronization prioritization 
information. 

12. (Previously Presented) A computer-implemented method comprising: 
receiving a request to take an action with respect to a first electronic document, the action 

unrelated to a second electronic document; 

synchronizing offline access information with a document control server in response to 
the request, when online, to pre-authorize offline access to the second electronic document, the 
synchronizing comprising receiving an update to offline access information retained locally, the 
update comprising a first key associated with a group of users of the document control server; 
and 

allowing access to the second electronic document, when offline, by performing 
operations comprising using the first key to decrypt a second key in the second electronic 
document and governing actions with respect to the second electronic document based on 
document-permissions information associated with the second electronic document. 

13. (Previously Presented) The method of claim 12, wherein governing actions with 
respect to the second electronic document comprises obtaining the document-permissions 
information from the second electronic document. 

14. (Previously Presented) The method of claim 12, wherein governing actions with 
respect to the second electronic document comprises: 

identifying a document policy reference in the second electronic document; and 
obtaining locally retained document-permissions information based on the document 
policy reference. 
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15. (Previously Presented) The method of claim 12, wherein the offline access 
information update comprises at least one user-specific key, at least one group-specific key, 
including the first key, at least one set of document-permissions information associated with 
multiple documents, and a document revocation list. 

16. (Previously Presented) The method of claim 12, further comprising preventing 
access to the second document, when offline, if a difference between a current time and a receipt 
time of the offline access information exceeds a server-synchronization-frequency parameter. 

17. (Original) The method of claim 16, wherein the server-synchronization- 
frequency parameter is specific to the document. 

18. (Original) The method of claim 12, further comprising: 
maintaining an offline audit log; and 

uploading the offline audit log when online. 

1 9. (Previously Presented) A computer-implemented method comprising: 
encrypting an electronic document; and 

incorporating into the encrypted electronic document an address of a document control 
server, document-permissions information, and an encryption key useable in decrypting the 
encrypted electronic document, the encryption key being encrypted with a key generated by, and 
associated with a group of users of, the document control server; 

wherein the encryption key comprises a session key generated by the document control 
server, encrypting the electronic document comprises encrypting the electronic document using a 
document key, and incorporating comprises incorporating into the encrypted electronic document 
a document security payload comprising the document key and the document-permissions 
information, the document security payload being encrypted using the session key. 

20. (Canceled) 
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21 . (Previously Presented) The method of claim 19, wherein the document security 
payload further comprises a document identifier assigned by the document control server, and 
incorporating further comprises incorporating into the encrypted electronic document a copy of 
the session key encrypted using a public key associated with the document control server. 

22. (Original) The method of claim 19, wherein the document-permissions 
information specifies access permissions at a level of granularity smaller than the electronic 
document. 

23. (Currently Amended) A software product tangibly embodied in a machine- 
readable m e dium storage device , the software product comprising instructions operable to cause 
one or more data processing apparatus to perform operations comprising: 

receiving a request from a client to take an action with respect to a first electronic 
document, the request unrelated to a second electronic document; and 

synchronizing offline access information with the client, in response to the request, to 
pre-authorize the client, to allow actions by a user as a member of a group of users, by sending to 
the client an update to offline access information retained at the client, the update comprising a 
first key associated with the group, the first key being useable at the client to access the second 
electronic document while offline by decrypting a second key in the second electronic document. 

24. (Previously Presented) The software product of claim 23, wherein synchronizing 
offline access information with the client comprises comparing a time of last recorded client- 
synchronization with a time of last change in user-group information for the user. 

25. (Previously Presented) The software product of claim 23, wherein synchronizing 
offline access information with the client comprises: 

receiving user-group information for the user from the client; and 
comparing current user-group information for the user with the received user-group 
information for the user from the client. 
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26. (Previously Presented) The software product of claim 23, wherein the client 
allows actions with respect to the second electronic document based on document-permissions 
information residing in the second electronic document. 

27. (Previously Presented) The software product of claim 23, wherein the offline 
access information update further comprises document-permissions information associated with 
multiple documents, including the second electronic document, and the client allows actions with 
respect to the second electronic document based on the document-permissions information. 

28. (Previously Presented) The software product of claim 23, wherein synchronizing 
offline access information with the client comprises synchronizing silently in a background 
process without the user being aware of the update. 

29. (Previously Presented) The software product of claim 23, wherein the request 
requires authentication, and the operations further comprise verifying the user at the client as an 
authenticated user. 

30. (Previously Presented) The software product of claim 23, wherein the offline 
access information update further comprises: 

at least one user-specific key; 

at least one group-specific key, including the first key; and 

at least one set of document-permissions information associated with multiple 



3 1 . (Original) The software product of claim 30, wherein the operations further 
comprise receiving an offline audit log from the client. 



documents. 
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32. (Previously Presented) The software product of claim 30, wherein the at least one 
set of document-permissions information comprises one or more policies associated with the first 
document, and the offline access information update further comprises a document revocation 



33. (Previously Presented) The software product of claim 30, wherein the offline 
access information update further comprises at least one set of document-permissions 
information associated with a specific document, and the operations further comprise selecting 
the document-specific document-permissions information based on synchronization 
prioritization information. 

34. (Currently Amended) A software product tangibly embodied in a machine- 
readable m e dium storage device , the software product comprising instructions operable to cause 
one or more data processing apparatus to perform operations comprising: 

receiving a request to take an action with respect to a first electronic document, the action 
unrelated to a second electronic document; 

synchronizing offline access information with a document control server in response to 
the request, when online, to pre-authorize offline access to the second electronic document, the 
synchronizing comprising receiving an update to offline access information retained locally, the 
update comprising a first key associated with a group of users of the document control server; 
and 

allowing access to the second electronic document, when offline, by performing 
operations comprising using the first key to decrypt a second key in the second electronic 
document and governing actions with respect to the second electronic document based on 
document-permissions information associated with the second electronic document. 

35. (Previously Presented) The software product of claim 34, wherein governing 
actions with respect to the second electronic document comprises obtaining the document- 
permissions information from the second electronic document. 



list. 
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36. (Previously Presented) The software product of claim 34, wherein governing 
actions with respect to the second electronic document comprises: 

identifying a document policy reference in the second electronic document; and 
obtaining locally retained document-permissions information based on the document 
policy reference. 

37. (Previously Presented) The software product of claim 34, wherein the offline 
access information update comprises at least one user-specific key, at least one group-specific 
key, including the first key, at least one set of document-permissions information associated with 
multiple documents, and a document revocation list. 

38. (Previously Presented) The software product of claim 34, wherein the operations 
further comprise preventing access to the second electronic document, when offline, if a 
difference between a current time and a receipt time of the offline access information exceeds a 
server-synchronization-frequency parameter. 

39. (Previously Presented) The software product of claim 38, wherein the server- 
synchronization-frequency parameter is specific to the second electronic document. 

40. (Previously Presented) The software product of claim 34, wherein the operations 
further comprise: 

maintaining an offline audit log; and 
uploading the offline audit log when online. 
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41 . (Currently Amended) A software product tangibly embodied in a machine- 
readable medium storage device , the software product comprising instructions operable to cause 
one or more data processing apparatus to perform operations comprising: 

encrypting an electronic document; and 

incorporating into the encrypted electronic document an address of a document control 
server, document-permissions information, and an encryption key useable in decrypting the 
encrypted electronic document, the encryption key being encrypted with a key generated by, and 
associated with a group of users of, the document control server; 

wherein the encryption key comprises a session key generated by the document control 
server, encrypting the electronic document comprises encrypting the electronic document using a 
document key, and incorporating comprises incorporating into the encrypted electronic document 
a document security payload comprising the document key and the document-permissions 
information, the document security payload being encrypted using the session key. 

42. (Canceled) 

43. (Previously Presented) The software product of claim 41 , wherein the document 
security payload further comprises a document identifier assigned by the document control 
server, and incorporating further comprises incorporating into the encrypted electronic document 
a copy of the session key encrypted using a public key associated with the document control 

server. 

44. (Original) The software product of claim 41 , wherein the document-permissions 
information specifies access permissions at a level of granularity smaller than the electronic 
document. 

45. (Previously Presented) A system comprising: 
a document control server that: 

receives a client request to take an action with respect to a first electronic 
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document, the client request unrelated to a second electronic document; and 

synchronizes offline access information with the client in response to the client 
request, to pre-authorize offline access to the second electronic document by sending an update 
to the offline access information retained at the client, the update comprising a first key 
associated with a group, the first key being useable at the client to access the second electronic 
document by decrypting a second key in the second electronic document; and 

the client that stores the first key in a memory and allows access to the second electronic 
document, when offline, by a user as a member of the group, using the first key to decrypt the 
second key in the second electronic document and governing actions with respect to the second 
electronic document based on document-permissions information associated with the second 
electronic document. 

46. (Previously Presented) The system of claim 45, wherein the second electronic 
document comprises the document-permissions information. 

47. (Previously Presented) The system of claim 46, wherein the second key 
comprises a session key generated by the document control server, and the second electronic 
document further comprises a document security payload comprising a document key and the 
document-permissions information, the document security payload being encrypted using the 
session key. 

48. (Previously Presented) The system of claim 45, wherein the offline access 
information update further comprises: 

at least one user-specific key; 

at least one group-specific key, including the first key; and 
at least one set of document-permissions information associated with multiple 
documents. 
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49. (Original) The system of claim 45, wherein the client comprises an agent that 
periodically contacts the document control server to synchronize the offline access information. 

50. (Original) The system of claim 45, wherein the document control server 
comprises: 

a server core with configuration and logging components; 

an internal services component that provides functionality across dynamically loaded 
methods; and 

dynamically loaded external service providers, including one or more access control 
service providers. 

51 . (Original) The system of claim 45, further comprising: 

a business logic tier comprising a cluster of document control servers, including the 
document control server; 

an application tier including the client comprising a viewer client, a securing client, and 
an administration client; and 

a load balancer that routes client requests to the document control servers. 

52. (Previously Presented) The system of claim 45, wherein the document control 
server synchronizes offline access information with the client silently in a background process 
without the user being aware of the update. 

53. (Original) The system of claim 52, wherein the document control server 
comprises a permissions-broker server including a translation component, the second document 
comprises a document secured previously by the permissions-broker server, and the translation 
component being operable to translate first document-permissions information in a first 
permissions-definition format into second document-permissions information in a second 
permissions-definition format in response to the request being received from the client. 
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54. (Original) The system of claim 52, wherein the server comprises a permissions- 
broker server operable to identify information associated with the second document in response 
to the request, the associated information being retained at the server and indicating a third 
electronic document different from and associated with the second document, the server being 
operable to relate information concerning the third electronic document to the client to facilitate 
the action to be taken. 

55. (Original) The system of claim 52, wherein the server comprises a permissions- 
broker server operable to obtain and send, in response to the request, a software program 
comprising instructions operable to cause one or more data processing apparatus to perform 
operations effecting an authentication procedure, and the client uses the authentication program 
to identify a current user and control the action with respect to the second document based on the 
current user and document-permissions information associated with the second document. 

56. (Previously Presented) A system comprising: 

server means for receiving client requests to take an action with respect to a first 
electronic document, the action unrelated to a second electronic document; 

server means for transparently synchronizing offline access information for the second 
electronic document in response to the client requests to pre-authorize the client, to allow offline 
actions by a user as a member of a group of users, by sending to the client an update to offline 
access information retained at the client, the update comprising a first key associated with the 
group, the first key being useable at the client to access the second electronic document while 
offline by decrypting a second key in the second electronic document; and 

client means for storing the first key in a memory and accessing the second electronic 
document using the offline access information. 

57. (Original) The system of claim 56, further comprising: 

server means for dynamically obtaining and sending authentication processes in response 
to client requests to take actions with respect to electronic documents; and 
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client means for interfacing with a received authentication process to identify a current 
user and for controlling actions with respect to electronic documents based on the current user 
and document-permissions information. 

58. (New) The system of claim 56 further comprising server means for comparing a 
time of last recorded client-synchronization with a time of last change in user-group information 
for the user. 

59. (New) The system of claim 56 wherein the server means for transparently 
synchronizing offline access information with the client is configured to: 

receive user-group information for the user from the client; and 
compare current user-group information for the user with the received user-group 
information for the user from the client. 

60. (New) The system of claim 56 further comprising client means for allowing 
actions with respect to the second electronic document based on document-permissions 
information residing in the second electronic document. 

61 . (New) The system of claim 56 wherein the offline access information update 
further comprises document-permissions information associated with multiple documents, 
including the second electronic document. 

62. (New) The system of claim 56, wherein the offline access information update 
further comprises: 

at least one user-specific key; 

at least one group-specific key, including the first key; and 

at least one set of document-permissions information associated with multiple 



documents. 
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63. (New) The system of claim 56, further comprising server means for receiving an 
offline audit log from the client. 

64. (New) The system of claim 56, wherein the at least one set of document- 
permissions information comprises one or more policies associated with the first document, and 
the offline access information update further comprises a document revocation list. 

65. (New) The system of claim 56, wherein the offline access information update 
further comprises at least one set of document-permissions information, associated with a 
specific document, selected based on synchronization prioritization information. 

66. (New) A system comprising: 

server means for encrypting an electronic document; and 

server means for incorporating into the encrypted electronic document an address of a 
document control server, document-permissions information, and an encryption key useable in 
decrypting the encrypted electronic document, the encryption key being encrypted with a key 
generated by, and associated with a group of users of, the document control server; 

wherein the encryption key comprises a session key generated by the document control 
server, encrypting the electronic document comprises encrypting the electronic document using a 
document key, and incorporating comprises incorporating into the encrypted electronic document 
a document security payload comprising the document key and the document-permissions 
information, the document security payload being encrypted using the session key. 

67. (New) The system of claim 58, further comprising server means for 
incorporating into the encrypted electronic document a copy of the session key encrypted using a 
public key associated with the document control server, and wherein the document security 
payload further comprises a document identifier assigned by the document control server. 
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68. (New) The method of claim 58, wherein the document-permissions information 
specifies access permissions at a level of granularity smaller than the electronic document. 



